November 9, 2001

Conectiva: w3m buffer overflow

Author: JT Smith

"w3m is a text based pager with WWW capability.

Ogasawara Satoshi and Kobayashi Shigehiro discovered a
vulnerability[1] in a MIME header parsing routine. A malicious web
server administrator could execute arbitrary code in the client
machine by sending malformed MIME headers inside the server HTTP
responses." Full details and upgrade links posted at Linux Weekly News.


  • Linux
Click Here!